Δημοσιεύτηκε: 03 Απρ 2011, 01:15
από Rhinomick
Κι εμένα!!!
το psad -Status μου δείχνει:
Κώδικας: Επιλογή όλων
[+] psadwatchd (pid: 1715)  %CPU: 0.0  %MEM: 0.0
    Running since: Sat Apr  2 23:37:56 2011

[+] psad (pid: 1713)  %CPU: 0.0  %MEM: 0.2
    Running since: Sat Apr  2 23:37:56 2011
    Command line arguments: [none specified]
    Alert email address(es): root@localhost

[+] Version: psad v2.1.5

[+] Top 50 signature matches:
      "SCAN UPnP communication attempt" (udp),  Count: 6,  Unique sources: 1,  Sid: 100074

[+] Top 25 attackers:
      192.168.1.1     DL: 2, Packets: 26, Sig count: 6


[+] Top 20 scanned ports:

      udp 1900  6 packets
      udp 54218 6 packets
      udp 50332 2 packets
      udp 56689 2 packets
      udp 37211 2 packets
      udp 37413 2 packets
      udp 42133 2 packets
      udp 59007 2 packets
      udp 48524 2 packets

[+] iptables log prefix counters:
      "[UFW BLOCK]": 26

    Total packet counters: tcp: 0, udp: 26, icmp: 0

[+] IP Status Detail:

SRC:  192.168.1.1, DL: 2, Dsts: 1, Pkts: 26, Unique sigs: 1, Email alerts: 8, Local IP

    DST: 192.168.1.2, Local IP
        Scanned ports: UDP 1900-59007, Pkts: 26, Chain: INPUT, Intf: eth0
        Signature match: "SCAN UPnP communication attempt"
            UDP, Chain: INPUT, Count: 4, DP: 1900, Sid: 100074

    Total scan sources: 1
    Total scan destinations: 1

[+] These results are available in: /var/log/psad/status.out

σημαίνει κάτι αυτό;